Skip to content

Commit 93ba08a

Browse files
dodysdodys
authored
Merge pull request #12675 from mpurg/ubuntu2404_cis_rules1
Add rules to several ubuntu2404 CIS controls
2 parents 8f7ac0f + 3dd04b6 commit 93ba08a

File tree

2 files changed

+13
-13
lines changed

2 files changed

+13
-13
lines changed

controls/cis_ubuntu2404.yml

Lines changed: 12 additions & 13 deletions
Original file line numberDiff line numberDiff line change
@@ -1762,10 +1762,9 @@ controls:
17621762
levels:
17631763
- l1_server
17641764
- l1_workstation
1765-
related_rules:
1765+
rules:
17661766
- sudo_add_use_pty
1767-
status: planned
1768-
notes: TODO. Partial/incorrect implementation exists.See related rules. Analogous to ubuntu2204/5.3.2.
1767+
status: automated
17691768

17701769
- id: 5.2.3
17711770
title: Ensure sudo log file exists (Automated)
@@ -1836,8 +1835,9 @@ controls:
18361835
levels:
18371836
- l1_server
18381837
- l1_workstation
1839-
status: planned
1840-
notes: TODO. Rule does not seem to be implemented, nor does it map to any rules in ubuntu2204 profile.
1838+
rules:
1839+
- package_pam_pwquality_installed
1840+
status: automated
18411841

18421842
- id: 5.3.2.1
18431843
title: Ensure pam_unix module is enabled (Automated)
@@ -2289,20 +2289,18 @@ controls:
22892289
levels:
22902290
- l1_server
22912291
- l1_workstation
2292-
related_rules:
2292+
rules:
22932293
- journald_compress
2294-
status: planned
2295-
notes: TODO. Partial/incorrect implementation exists.See related rules. Analogous to ubuntu2204/4.2.1.3.
2294+
status: automated
22962295

22972296
- id: 6.1.2.4
22982297
title: Ensure journald Storage is configured (Automated)
22992298
levels:
23002299
- l1_server
23012300
- l1_workstation
2302-
related_rules:
2301+
rules:
23032302
- journald_storage
2304-
status: planned
2305-
notes: TODO. Partial/incorrect implementation exists.See related rules. Analogous to ubuntu2204/4.2.1.4.
2303+
status: automated
23062304

23072305
- id: 6.1.3.1
23082306
title: Ensure rsyslog is installed (Automated)
@@ -2327,8 +2325,9 @@ controls:
23272325
levels:
23282326
- l1_server
23292327
- l1_workstation
2330-
status: planned
2331-
notes: TODO. Rule does not seem to be implemented. Analogous to ubuntu2204/4.2.2.3.
2328+
rules:
2329+
- journald_forward_to_syslog
2330+
status: automated
23322331

23332332
- id: 6.1.3.4
23342333
title: Ensure rsyslog log file creation mode is configured (Automated)

linux_os/guide/system/accounts/accounts-pam/package_pam_pwquality_installed/rule.yml

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -47,6 +47,7 @@ template:
4747
pkgname: libpwquality
4848
pkgname@ubuntu2004: libpam-pwquality
4949
pkgname@ubuntu2204: libpam-pwquality
50+
pkgname@ubuntu2404: libpam-pwquality
5051
pkgname@debian12: libpam-pwquality
5152

5253
platform: package[pam]

0 commit comments

Comments
 (0)